Which statement correctly describes platform-managed keys vs CMEK in Fabric encryption?

Prepare for the DP-700 Microsoft Fabric Data Engineer Exam with flashcards and multiple choice questions. Study with hints and explanations, and ensure success on your certification exam!

Multiple Choice

Which statement correctly describes platform-managed keys vs CMEK in Fabric encryption?

Explanation:
In Fabric encryption, the key idea is who controls the cryptographic keys. Customer-managed keys (CMEK) let you bring and manage your own keys through your own Key Management Service, giving you direct control over key creation, rotation, access policies, and lifecycle. Platform-managed keys, on the other hand, are managed by the provider on your behalf, with you not handling the key material directly. Therefore, the statement that CMEK enables customers to manage their own keys, while platform-managed keys are managed by the provider, is the accurate description. The other ideas conflate control or deny support for CMEK, which isn’t correct in this context.

In Fabric encryption, the key idea is who controls the cryptographic keys. Customer-managed keys (CMEK) let you bring and manage your own keys through your own Key Management Service, giving you direct control over key creation, rotation, access policies, and lifecycle. Platform-managed keys, on the other hand, are managed by the provider on your behalf, with you not handling the key material directly.

Therefore, the statement that CMEK enables customers to manage their own keys, while platform-managed keys are managed by the provider, is the accurate description. The other ideas conflate control or deny support for CMEK, which isn’t correct in this context.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy